[....] Starting enhanced syslogd: rsyslogd[ 12.714293] audit: type=1400 audit(1516051748.430:5): avc: denied { syslog } for pid=3495 comm="rsyslogd" capability=34 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [?25l[?1c7[ ok 8[?25h[?0c. [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. Starting mcstransd: [....] Starting file context maintaining daemon: restorecond[?25l[?1c7[ ok 8[?25h[?0c. [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 syzkaller login: [ 19.227952] audit: type=1400 audit(1516051754.943:6): avc: denied { map } for pid=3635 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '10.128.0.45' (ECDSA) to the list of known hosts. net.ipv6.conf.syz0.accept_dad = 0 net.ipv6.conf.syz0.router_solicitations = 0 [ 33.884887] audit: type=1400 audit(1516051769.600:7): avc: denied { map } for pid=3652 comm="syzkaller316756" path="/root/syzkaller316756784" dev="sda1" ino=16481 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:user_home_t:s0 tclass=file permissive=1 RTNETLINK answers: Operation not supported RTNETLINK answers: No buffer space available RTNETLINK answers: Operation not supported [ 34.157552] IPv6: ADDRCONF(NETDEV_UP): bridge0: link is not ready RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Operation not supported RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument RTNETLINK answers: Invalid argument executing program [ 34.499251] skbuff: skb_under_panic: text:00000000146e5f60 len:31 put:24 head:00000000897d6180 data:0000000041956f82 tail:0x7 end:0xc0 dev:gre0 [ 34.512568] ------------[ cut here ]------------ [ 34.517299] kernel BUG at net/core/skbuff.c:104! [ 34.522104] invalid opcode: 0000 [#1] SMP KASAN [ 34.526746] Dumping ftrace buffer: [ 34.530261] (ftrace buffer empty) [ 34.533944] Modules linked in: [ 34.537112] CPU: 0 PID: 3652 Comm: syzkaller316756 Not tainted 4.15.0-rc7+ #190 [ 34.544524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 34.553853] RIP: 0010:skb_panic+0x162/0x1f0 [ 34.558144] RSP: 0018:ffff8801bc78f840 EFLAGS: 00010282 [ 34.563563] RAX: 0000000000000083 RBX: ffff8801d60e5d00 RCX: 0000000000000000 [ 34.570806] RDX: 0000000000000083 RSI: 1ffff100378f1ec8 RDI: ffffed00378f1efc [ 34.578046] RBP: ffff8801bc78f8a8 R08: 1ffff100378f1e8a R09: 0000000000000000 [ 34.585287] R10: 0000000000000001 R11: 0000000000000000 R12: ffffffff861f9760 [ 34.592529] R13: ffffffff84a4e64d R14: 0000000000000018 R15: ffff8801d3232180 [ 34.599773] FS: 0000000001bf0880(0000) GS:ffff8801db200000(0000) knlGS:0000000000000000 [ 34.607968] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 34.613820] CR2: 00000000208bc000 CR3: 00000001bd633006 CR4: 00000000001606f0 [ 34.621088] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 34.628330] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 34.635569] Call Trace: [ 34.638135] ? check_stack_object+0x140/0x140 [ 34.642610] ? ipgre_header+0x6d/0x4e0 [ 34.646473] skb_push+0xce/0xf0 [ 34.649724] ipgre_header+0x6d/0x4e0 [ 34.653410] pppoe_sendmsg+0x58e/0x8b0 [ 34.657266] ? prepare_fb_xmit+0x990/0x990 [ 34.661472] ? pppoe_getname+0x210/0x210 [ 34.665505] ? selinux_socket_sendmsg+0x36/0x40 [ 34.670146] ? security_socket_sendmsg+0x89/0xb0 [ 34.674879] ? pppoe_getname+0x210/0x210 [ 34.678912] sock_sendmsg+0xca/0x110 [ 34.682598] sock_write_iter+0x31a/0x5d0 [ 34.686629] ? sock_sendmsg+0x110/0x110 [ 34.690576] ? bpf_fd_pass+0x280/0x280 [ 34.694433] ? __might_sleep+0x6c/0x190 [ 34.698377] do_iter_readv_writev+0x525/0x7f0 [ 34.702845] ? vfs_dedupe_file_range+0x8f0/0x8f0 [ 34.707573] ? rw_verify_area+0xe5/0x2b0 [ 34.711612] do_iter_write+0x154/0x540 [ 34.715471] ? dup_iter+0x260/0x260 [ 34.719087] vfs_writev+0x18a/0x340 [ 34.722691] ? __fget_light+0x297/0x380 [ 34.726637] ? vfs_iter_write+0xb0/0xb0 [ 34.730579] ? up_read+0x1a/0x40 [ 34.733923] ? __do_page_fault+0x3d6/0xc90 [ 34.738131] ? mm_fault_error+0x2c0/0x2c0 [ 34.742254] ? __fdget_pos+0x130/0x190 [ 34.746112] ? __fdget_raw+0x20/0x20 [ 34.749798] ? __do_page_fault+0xc90/0xc90 [ 34.754004] do_writev+0xfc/0x2a0 [ 34.757426] ? do_writev+0xfc/0x2a0 [ 34.761024] ? vfs_writev+0x340/0x340 [ 34.764796] ? entry_SYSCALL_64_fastpath+0x5/0x9a [ 34.769609] ? trace_hardirqs_on_caller+0x421/0x5c0 [ 34.774596] SyS_writev+0x27/0x30 [ 34.778018] entry_SYSCALL_64_fastpath+0x23/0x9a [ 34.782742] RIP: 0033:0x445029 [ 34.785901] RSP: 002b:00007ffd87695708 EFLAGS: 00000217 ORIG_RAX: 0000000000000014 [ 34.793579] RAX: ffffffffffffffda RBX: 00000000004a6872 RCX: 0000000000445029 [ 34.800818] RDX: 0000000000000001 RSI: 0000000020211f90 RDI: 0000000000000004 [ 34.808063] RBP: 00007ffd87695818 R08: 0000000000000000 R09: 0000000000000000 [ 34.815308] R10: 0000000000000000 R11: 0000000000000217 R12: 00007ffd87695818 [ 34.822548] R13: 0000000000402530 R14: 0000000000000000 R15: 0000000000000000 [ 34.829795] Code: 04 01 84 c0 74 04 3c 03 7e 23 8b 8b 80 00 00 00 41 57 48 c7 c7 20 90 1f 86 52 56 4c 89 ea 41 50 4c 89 e6 45 89 f0 e8 46 a1 27 fd <0f> 0b 4c 89 4d b8 4c 89 45 c0 48 89 75 c8 48 89 55 d0 e8 37 d0 [ 34.848861] RIP: skb_panic+0x162/0x1f0 RSP: ffff8801bc78f840 [ 34.854779] ---[ end trace d7d57cec90b6d96c ]--- [ 34.859697] Kernel panic - not syncing: Fatal exception [ 34.865435] Dumping ftrace buffer: [ 34.868955] (ftrace buffer empty) [ 34.872636] Kernel Offset: disabled [ 34.876232] Rebooting in 86400 seconds..